2c11c1b1b442f65475c91dfc8f6db293d6f97a376ac317cebfedc535e4e98c59 | Triage

Sharing

General

Target

ea87f6bdab041237f67633cbcada2793_JaffaCakes118
Size

15.4MB
Sample

240919-edr2qazdln
MD5

ea87f6bdab041237f67633cbcada2793
SHA1

429b6b9fae43f610d642df62cbcd025f30ee2e74
SHA256

2c11c1b1b442f65475c91dfc8f6db293d6f97a376ac317cebfedc535e4e98c59
SHA512

1c611caf571b98ce3c7f4025a55f24f38a8aad72aec093b388b21348a1847524b65f446d6fedc4a068f43d6553ca6e47ecb625e60a67728ed2aba4f6785212c2
SSDEEP

393216:6m9QEMptObW7+gBljmmvRZwlhKNEAVCl9YkqVLzjsQ+dBSd:6eHbKtbvvMLVaCxqVoQzd

Score

7^/10

discovery upx

Malware Config

Targets

- Target
  
  155ɫվ.url
- Size
  
  253B
- MD5
  
  339618361ad360eeeb6efbaaee579a3c
- SHA1
  
  875438658dc1bcb56510e4493456a8474ced4d45
- SHA256
  
  827fe1155ce21a373c023c82b229be6152237ef532ea2aa5b589b4b3d4345a5a
- SHA512
  
  1a84a9adae0fdbcd17b3309b5e9a134853c6ad7f4a6bf7a8f42e55ced8e43e7b7a3990858bf3191327fb135f5b1e06625169d1d550eb933e3aed29ee02095130
Score

1^/10
behavioral1 behavioral2
- Target
  
  Lz0/Keygen.exe
- Size
  
  116KB
- MD5
  
  f6b676330690979bc79357208d6605cb
- SHA1
  
  39f56b579e1f6164e0ec958cce01150bfd0998d1
- SHA256
  
  cb16993329d7906336b8860127dbba679e421fc4d7947b9167b06cc75268d127
- SHA512
  
  ebbe4950aad65e210765635559e6ee305c2ff47de19bd227931fb93c02ca2944b5958d483ca74d396d6b92f9a5f9047369bdf1870193c90cbfe7ec86bc9fcbd1
- SSDEEP
  
  1536:klxa0mKf83Ao3L3UrGSgTE9e3PoaNhBpOfmV04Agt0PhkmFZDu4Y71nk79oFNM83:8nmKd0aZ1IHNhSfFx7C4S1k7sNVl3m
Score

7^/10

discovery upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral3 behavioral4
- Target
  
  vsoBlurayToAVI_setup.exe
- Size
  
  15.4MB
- MD5
  
  9ee1533c2b45add8a13ca8536444b479
- SHA1
  
  e3f236533d0899792c7096374c2ce23aca94adeb
- SHA256
  
  3b2fdc0d570f767c5724598f90bfbdd0ee6565e85714e900cbfb0192276c50cd
- SHA512
  
  7b74dae3a71338c065e28ac719e22179cfa9c862739f04d5c9c9426beedffeee524cbd267049af83fa12e7ac73e57ef11abf13ef2fd74999528b805a42753579
- SSDEEP
  
  393216:urYiQFDErE7pydHXC0VFJcrdKDKq0yzrYskN3TCR+dBwV:aDr0AVpVEJHXyZkNEZV
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
behavioral5 behavioral6

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6